Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/e2be5c-0e67-4f82-97c2-105d8002149d/1/e8e-Uh0XpqWSzGH3kUwl8WlXzJw.mft
File:                     e8e-Uh0XpqWSzGH3kUwl8WlXzJw.mft (raw, json)
Hash identifier:          oRXxifHQ2nLYqfQV6RiShWzalIhG7pM3LkUf3VYk6H4=
Subject key identifier:   63:A8:78:EA:F3:0D:C1:22:E9:78:6D:9A:C2:ED:AA:68:91:41:11:3E
Authority key identifier: 7B:C7:BE:52:1D:17:A6:A5:92:CC:61:F7:91:4C:25:F1:69:57:CC:9C
Certificate issuer:       /CN=7bc7be521d17a6a592cc61f7914c25f16957cc9c
Certificate serial:       019923A0EBD5414AE9F9985E3BFBEA61B30D
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/e8e-Uh0XpqWSzGH3kUwl8WlXzJw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/a2/e2be5c-0e67-4f82-97c2-105d8002149d/1/e8e-Uh0XpqWSzGH3kUwl8WlXzJw.mft
Manifest number:          062E
Signing time:             Sun 07 Sep 2025 10:02:52 +0000
Manifest this update:     Sun 07 Sep 2025 10:02:52 +0000
Manifest next update:     Mon 08 Sep 2025 10:02:52 +0000
Files and hashes:         1: e8e-Uh0XpqWSzGH3kUwl8WlXzJw.crl (hash: MPrjB+HiviR6RWomL3rUtvonGep34tyb0n9GbBiED2U=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/a2/e2be5c-0e67-4f82-97c2-105d8002149d/1/e8e-Uh0XpqWSzGH3kUwl8WlXzJw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/a2/e2be5c-0e67-4f82-97c2-105d8002149d/1/e8e-Uh0XpqWSzGH3kUwl8WlXzJw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/e8e-Uh0XpqWSzGH3kUwl8WlXzJw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 08 Sep 2025 05:00:23 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:23:a0:eb:d5:41:4a:e9:f9:98:5e:3b:fb:ea:61:b3:0d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=7bc7be521d17a6a592cc61f7914c25f16957cc9c
        Validity
            Not Before: Sep  7 10:02:52 2025 GMT
            Not After : Sep  8 10:02:52 2025 GMT
        Subject: CN=63a878eaf30dc122e9786d9ac2edaa689141113e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e4:98:5c:a5:fe:c6:a8:e1:ae:a7:8e:5a:f3:c7:
                    bd:21:33:ee:90:5b:81:52:fe:85:fd:fa:24:3d:fd:
                    d3:0e:f2:b9:30:27:28:bb:89:60:fb:82:6f:ea:6e:
                    ec:8b:3f:4a:d5:5b:88:af:50:77:9d:26:5b:82:f5:
                    b8:c1:16:d9:80:2c:59:19:9d:1c:1c:a4:7d:fc:0a:
                    72:49:bb:8e:e8:6a:9d:a7:2c:3b:67:24:b0:4c:d7:
                    68:c7:0b:51:77:69:24:84:fc:bd:b8:80:2e:e9:c5:
                    96:35:ff:3b:7a:4e:eb:ee:0c:27:2e:35:8e:c2:3f:
                    86:4f:01:15:2d:98:93:96:66:4d:11:1f:bf:7c:26:
                    bc:1c:a4:26:1c:59:f2:d2:b9:6b:bd:2f:03:36:28:
                    a7:4a:82:92:9d:c7:ee:3c:d9:61:10:00:91:94:e0:
                    3a:07:49:74:4b:9d:aa:de:54:70:e2:83:d4:20:fd:
                    49:c9:d5:4a:08:6d:ef:3b:9e:55:db:14:89:87:f4:
                    c1:11:04:94:d7:32:be:76:07:79:8b:23:6c:a7:b0:
                    1f:87:fb:08:c6:d5:a8:14:55:c1:91:71:a4:7c:97:
                    cf:0e:0c:0d:a2:5d:44:38:02:b2:20:0f:df:92:89:
                    bb:24:94:08:e1:43:4f:7d:8b:b4:56:09:d3:62:ba:
                    cf:0f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                63:A8:78:EA:F3:0D:C1:22:E9:78:6D:9A:C2:ED:AA:68:91:41:11:3E
            X509v3 Authority Key Identifier:
                keyid:7B:C7:BE:52:1D:17:A6:A5:92:CC:61:F7:91:4C:25:F1:69:57:CC:9C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8e-Uh0XpqWSzGH3kUwl8WlXzJw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/e2be5c-0e67-4f82-97c2-105d8002149d/1/e8e-Uh0XpqWSzGH3kUwl8WlXzJw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/e2be5c-0e67-4f82-97c2-105d8002149d/1/e8e-Uh0XpqWSzGH3kUwl8WlXzJw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         18:ed:76:03:64:88:43:a4:fb:09:85:ee:8f:b2:88:cc:65:d7:
         92:3d:96:81:db:2e:61:3a:de:02:c4:45:42:7e:bc:2f:8f:c4:
         3b:e4:15:90:d7:15:c7:d7:e1:a5:a8:81:8e:cc:20:c4:bd:3b:
         e5:db:77:73:a9:d5:c1:6f:04:f2:e8:92:b0:ad:b5:bd:12:a8:
         41:e6:2a:99:bf:a5:33:ea:1f:da:e9:fb:b0:c1:93:11:9a:94:
         30:25:b8:72:73:99:29:e9:28:40:89:c7:09:be:d6:bd:06:08:
         a0:42:1c:b5:9e:4b:17:b1:44:b6:b9:51:c9:ef:d5:9f:d1:7c:
         e5:33:67:a0:93:f8:16:fb:21:01:d4:6a:8b:fe:de:48:e1:05:
         d0:0f:1c:91:c7:f8:08:ab:39:5d:e5:6c:04:65:07:af:3d:fc:
         63:bc:bd:cd:4e:84:06:bd:c9:25:f4:66:25:4d:c6:aa:1a:e8:
         2f:9f:cf:d5:0e:90:b9:88:e3:ee:ab:85:97:1c:40:4d:ff:82:
         74:6b:a6:2e:49:2a:29:e3:1a:d1:d0:17:56:53:84:7f:b0:10:
         c1:56:d9:a1:72:fe:6d:8d:9d:de:31:47:33:b6:7b:ed:80:99:
         f5:a7:ab:09:c0:c2:2c:18:51:88:08:9a:bd:f9:95:13:c6:b3:
         07:69:72:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----